Vulnerabilities > CVE-2005-3812 - Denial Of Service vulnerability in Freeftpd 1.0.10
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
freeFTPd 1.0.10 allows remote authenticated users to cause a denial of service (null dereference and crash) via a PORT command with missing arguments.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | FreeFTPD <= 1.0.10 (PORT Command) Denial of Service Exploit. CVE-2005-3812. Dos exploit for windows platform |
id | EDB-ID:1339 |
last seen | 2016-01-31 |
modified | 2005-11-24 |
published | 2005-11-24 |
reporter | Stefan Lochbihler |
source | https://www.exploit-db.com/download/1339/ |
title | FreeFTPD <= 1.0.10 PORT Command Denial of Service Exploit |
Nessus
NASL family | FTP |
NASL id | FREEFTPD_PORT_DOS.NASL |
description | The remote host appears to be using freeFTPd, a free FTP / FTPS / SFTP server for Windows. The version of freeFTPd installed on the remote host crashes if it receives a PORT command with a port number from an authenticated user. In addition, the application reportedly will freeze for a period of time if it receives a PASV command with user-supplied data. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 20247 |
published | 2005-11-29 |
reporter | This script is Copyright (C) 2005-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/20247 |
title | freeFTPd Multiple Command Malformed Argument Remote DoS |